Lucene search
K

325 matches found

Veracode
Veracode
added 2025/12/13 5:0 a.m.6 views

Cleartext Password Disclosure

Apache Syncope is vulnerable to Cleartext Password Disclosure. The issue arises from use of a hard-coded default AES key when AES-based password storage is enabled, allowing an attacker with access to the internal database to decrypt and recover user passwords...

7.5CVSS6.9AI score0.00448EPSS
Exploits0References5Affected Software4
EUVD
EUVD
added 2025/12/11 7:40 p.m.5 views

EUVD-2024-55325

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

5.5CVSS6.1AI score0.00096EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/06 12:31 a.m.10 views

CVE-2025-64056

File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem...

4.3CVSS7AI score0.00211EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.5 views

Fedora 42 : cef (2025-58193e3850)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-58193e3850 advisory. Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High...

8.8CVSS6.9AI score0.06776EPSS
Exploits2References26
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.5 views

Cinnamon kotaemon 安全漏洞

Cinnamon kotaemon is a RAG-based open source tool from Cinnamon Open Source. A security vulnerability exists in Cinnamon kotaemon version 0.11.0, which originates from storing plaintext passwords in client-side localStorage...

7.5CVSS6.5AI score0.00381EPSS
Exploits1References5
Redos
Redos
added 2025/11/13 12:0 a.m.6 views

ROS-20251113-01

A vulnerability in the Omnibox component of the Google Chrome and Microsoft Edge browsers is related to writing outside the boundaries of the buffer. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges A vulnerability in the Safe Browsing compone...

8.8CVSS9.7AI score0.03638EPSS
Exploits1
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.4 views

Ceph 输入验证错误漏洞

Ceph is a file storage platform from Ceph open source. An input validation error vulnerability exists in Ceph 19.2.3 and earlier versions, which stems from improper handling of the x-amz-copy-source parameter and could lead to a denial of service...

7.5CVSS6.3AI score0.0044EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2025/11/06 10:8 p.m.4 views

CVE-2025-11216

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...

6.3CVSS8.2AI score0.00222EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/10/17 6:44 p.m.18 views

CVE-2025-34519

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an insecure hashing algorithm vulnerability. The product stores passwords using the MD5 hash function without applying a per‑password salt. Because MD5 is a fast, unsalted hash, an attacker who obtains the password database can...

8.2CVSS7.1AI score0.0028EPSS
Exploits2References1
Kaspersky
Kaspersky
added 2025/10/09 12:0 a.m.6 views

KLA89198 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Storage can be exploited to cause denial of service or...

8.8CVSS9.8AI score0.00314EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.3 views

Microsoft Edge (Chromium) < 141.0.3537.71 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 141.0.3537.71. It is, therefore, affected by multiple vulnerabilities as referenced in the October 9, 2025 advisory. - Use after free in Storage. CVE-2025-11460 - Heap buffer overflow in Sync. CVE-2025-11458 Note that...

8.8CVSS8.3AI score0.00314EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2025/10/08 11:27 p.m.3 views

SUSE CVE-2025-11460

Use after free in Storage in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to execute arbitrary code via a crafted video file. Chromium security severity: High...

8.8CVSS7.9AI score0.00314EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-14777

Malware in sbrugna...

8.4CVSS8.4AI score0.00381EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-28641

Malware in sbrugna...

7.8CVSS7.6AI score0.00203EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-6004

Malware in sbrugna...

7.5CVSS6.8AI score0.01397EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-9965

Malware in sbrugna...

4.9CVSS5.2AI score0.00723EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-3527

Malware in sbrugna...

7.8CVSS6.4AI score0.02388EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-0484

Malware in sbrugna...

4.6CVSS6.4AI score0.00439EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-13781

Malware in sbrugna...

4CVSS4.8AI score0.0034EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3884

Malware in sbrugna...

2.1CVSS6.4AI score0.00346EPSS
Exploits0References8
Rows per page
Query Builder